Fog Custom PXE Menu Password Hi everyone
I've got a problem with Fog's PXE menu - I've added GParted to my boot menu but want to password protect it
When editing the /tftpboot/pxelinux.cfg/default to add the GParted option, I thought about copying the password line from another menu item but noticed that they all have different password lines, in spite of using the same password (damned clever encryption...)
Any ideas how I can do this?
Thanks!
Admittedly I only used a cleartext password for a couple of my menu items, but this is from the syslinux menu.txt documentation and should help:
Code:MENU PASSWD passwd (Only valid after a LABEL statement.) Sets a password on this menu entry. "passwd" can be either a cleartext password or a password encrypted with one of the following algorithms: MD5 (Signature: $1$) SHA-1 (Signature: $4$) SHA-2-256 (Signature: $5$) SHA-2-512 (Signature: $6$) Use the included Perl scripts "sha1pass" or "md5pass" to encrypt passwords. MD5 passwords are compatible with most Unix password file utilities; SHA-1 passwords are probably unique to Syslinux; SHA-2 passwords are compatible with very recent Linux distributions. Obviously, if you don't encrypt your passwords they will not be very secure at all. If you are using passwords, you want to make sure you also use the settings "NOESCAPE 1", "PROMPT 0", and either set "ALLOWOPTIONS 0" or use a master password (see below.) If passwd is an empty string, this menu entry can only be unlocked with the master password.
Hey Andy, thanks for the reply but I'm a bit confused:
Does that mean that if I set a master password and then leave the other options blank, ALL menu options will use the same one? If so, that would be sweeeeeeeeeeeeeeeeeeeeeeeeeeetCode:If passwd is an empty string, this menu entry can only be unlocked with the master password.
---
How do I use these? Sorry - bit of a Linux newbieCode:Use the included Perl scripts "sha1pass" or "md5pass" to encrypt passwords. MD5 passwords are compatible with most Unix password file utilities; SHA-1 passwords are probably unique to Syslinux; SHA-2 passwords are compatible with very recent Linux distributions. Obviously, if you don't encrypt your passwords they will not be very secure at all.
Hey guys
Never got a working solution here but I was thinking that the ideal would be that I can set a 'master' password which unlocks all menu items (i.e. I set the password once and no matter what entry I click on (apart from Boot from Hard Disk), it asks for the same password so it doesn't have to be set on each item - is that possible?
Thanks
Hi,
I wanted to get the same results. Turns out the 'Master password' is like a master key, it'll open any label password.
So to get the effect you're after all you need to do is under each label set a random password, then set the master password, don't worry about remembering the random password as the master password will get you in but keep the kids out!
If you want an option accessible to the kids (boot from local hard drive) then just don't set a label password on it.
Setting passwords doesn't affect FOG's ability to boot tasks set by the web interface.
HTH,
Seb
if you need more help with setting passwords on the PXE boot menu let me know.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
LinkBack URL
About LinkBacks
Reply With Quote